Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/uavGPrkCeQCpjqg4G8y9vBzLEbQ.roa
File: uavGPrkCeQCpjqg4G8y9vBzLEbQ.roa (raw, json)
Hash identifier: de8IqKR6dLt/o0pqASYo78iWnAmg5mNKFhCRDbuSMzA=
Subject key identifier: B9:AB:C6:3E:B9:02:79:00:A9:8E:A8:38:1B:CC:BD:BC:1C:CB:11:B4
Certificate issuer: /CN=4978d328bcde5294f372765c11aeef28155b0f02
Certificate serial: 01920E631A2105647C5F723268FA54CA6323
Authority key identifier: 49:78:D3:28:BC:DE:52:94:F3:72:76:5C:11:AE:EF:28:15:5B:0F:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SXjTKLzeUpTzcnZcEa7vKBVbDwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/uavGPrkCeQCpjqg4G8y9vBzLEbQ.roa
Signing time: Fri 20 Sep 2024 07:43:48 +0000
ROA not before: Fri 20 Sep 2024 07:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47745
IP address blocks: 85.187.1.0/24 maxlen: 24
87.246.6.0/24 maxlen: 24
87.246.39.0/24 maxlen: 24
151.237.60.0/23 maxlen: 23
151.237.60.0/24 maxlen: 24
151.237.61.0/24 maxlen: 24
185.255.59.0/24 maxlen: 24
212.5.56.0/23 maxlen: 23
212.5.56.0/24 maxlen: 24
212.5.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/SXjTKLzeUpTzcnZcEa7vKBVbDwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/SXjTKLzeUpTzcnZcEa7vKBVbDwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SXjTKLzeUpTzcnZcEa7vKBVbDwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0e:63:1a:21:05:64:7c:5f:72:32:68:fa:54:ca:63:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4978d328bcde5294f372765c11aeef28155b0f02
Validity
Not Before: Sep 20 07:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9abc63eb9027900a98ea8381bccbdbc1ccb11b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:21:59:69:5f:1f:08:81:b3:c1:29:c4:08:
b4:f3:31:55:0e:21:85:99:ff:bf:f8:ad:f6:0b:d9:
c4:3e:10:78:c1:bc:0a:76:b2:be:2d:09:3e:e2:ec:
c7:f9:6c:b4:7c:4c:10:ed:7c:74:1b:b4:2a:09:4b:
83:71:fb:8b:fa:36:8e:28:28:08:96:9b:3e:90:fd:
cb:aa:80:43:75:f6:f4:d5:ae:c2:b6:12:f9:28:44:
99:d9:55:d4:9a:c2:ba:56:c0:72:b6:f7:bd:60:25:
a0:e5:6c:d0:f4:6f:52:bb:0d:af:92:da:ca:e6:e9:
dc:18:aa:66:3e:6a:d1:f3:78:60:de:2d:a9:fc:46:
dd:33:33:c7:62:f5:ac:c7:eb:d9:b3:fb:3a:eb:d0:
04:cb:33:30:29:3b:40:46:a4:4b:72:9f:0e:c6:8c:
a7:c6:22:af:f1:fd:6c:a4:9e:ab:cb:b1:b0:ad:ef:
b8:05:35:76:7b:d6:a8:f7:43:e9:f2:a0:30:f9:46:
f8:80:2d:cf:63:bc:99:d4:79:3b:64:14:30:88:62:
3a:f7:e4:ac:7e:79:12:02:45:cb:2e:37:c7:e4:ec:
51:65:43:49:8c:cb:84:c4:a3:93:40:75:d1:65:62:
27:cb:c5:fd:3b:1b:5b:a7:f3:7e:5f:ab:05:6e:2e:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AB:C6:3E:B9:02:79:00:A9:8E:A8:38:1B:CC:BD:BC:1C:CB:11:B4
X509v3 Authority Key Identifier:
keyid:49:78:D3:28:BC:DE:52:94:F3:72:76:5C:11:AE:EF:28:15:5B:0F:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SXjTKLzeUpTzcnZcEa7vKBVbDwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/uavGPrkCeQCpjqg4G8y9vBzLEbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe173b-f87f-464f-b1b9-8c7d20923b08/1/SXjTKLzeUpTzcnZcEa7vKBVbDwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.1.0/24
87.246.6.0/24
87.246.39.0/24
151.237.60.0/23
185.255.59.0/24
212.5.56.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:72:52:d2:d2:c4:c7:6a:f7:c9:3b:f7:e1:2c:4a:bc:19:41:
0c:79:58:0b:e4:a4:c2:4d:02:a6:63:9f:f1:d1:d5:3d:0e:9a:
d6:d9:37:9d:2f:f5:b8:fe:e5:b1:7f:a7:77:e8:86:77:cd:63:
68:1f:be:8b:6f:4d:b9:64:82:62:3a:71:4e:d2:9c:6b:37:ef:
ee:a4:3d:9d:e2:14:fd:b8:f5:d1:f6:71:e9:77:32:dc:95:3b:
89:fe:50:92:93:f3:35:e6:ec:f0:75:52:52:55:8e:54:67:20:
f8:dc:ca:5d:80:f8:c9:90:80:4d:9a:5a:d3:35:09:31:c5:66:
35:71:fb:10:1e:ed:36:17:15:f1:aa:10:44:fd:e6:9c:a9:2a:
11:f4:61:8b:9e:01:49:be:44:a2:9b:a4:cd:8b:9d:ef:95:1c:
9b:4c:7f:0b:b5:a3:ba:3e:38:8d:19:5b:80:73:23:d6:0a:91:
1e:15:26:d1:70:0f:9f:18:e4:fc:37:1f:a0:99:aa:d2:f8:22:
00:f1:9a:6f:bb:95:6f:68:63:b8:4e:cd:10:69:a1:dc:8e:af:
dd:6c:67:49:ec:e8:e0:18:8c:1d:ee:27:44:97:bd:8f:6f:c8:
2d:37:ae:fc:e9:19:f4:85:88:2f:36:2c:46:3e:24:0e:cb:04:
62:b7:67:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:36:07 2024 by rpki-client on console-fra.rpki-client.org